$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/47700FAC998F11EEBD7D785DC4F9AE02.roa File: 47700FAC998F11EEBD7D785DC4F9AE02.roa (raw, json) Hash identifier: IqZHPbkrenOzMabAlNsbYcjOcG7iQx0kFVi1sqwTqrU= Subject key identifier: BD:D8:A7:DC:FF:38:D7:36:22:76:57:86:DA:D3:95:3F:60:45:8D:EA Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 06D4 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/47700FAC998F11EEBD7D785DC4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:48 +0000 ROA not before: Mon 14 Oct 2024 22:52:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58600 IP address blocks: 103.9.40.0/22 maxlen: 24 163.47.104.0/22 maxlen: 24 2403:c900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA Validity Not Before: Oct 14 22:52:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0c0-2dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:87:54:96:a4:43:ab:a3:a9:09:15:66:34:8f: 98:23:1a:11:03:5c:4e:de:2f:ff:cc:62:0a:eb:dd: 78:8c:bc:5b:0f:72:9e:d7:b2:89:a6:64:de:d0:d2: 83:90:20:d4:3e:b7:6b:d0:6d:a4:74:bf:d4:eb:45: 87:ff:84:a7:4c:18:24:4b:d6:d0:09:93:88:5a:20: 14:ed:1d:0b:96:5f:bb:ed:b4:2e:b4:7b:6c:6e:a9: 16:e9:91:c8:78:5b:92:34:a8:29:96:21:22:db:86: c1:75:28:ad:9d:12:48:e1:aa:7d:b0:b9:aa:81:74: a3:e6:8c:42:25:b7:50:23:36:5e:53:38:b7:f0:b2: 1b:64:04:5f:dc:2e:90:05:4f:cc:da:f9:45:ba:6b: fc:cb:a4:89:82:92:dc:fb:44:3e:3f:74:2e:0c:06: ce:39:b9:cf:7e:40:7c:d9:56:d9:53:df:68:6b:2e: d1:33:fd:af:94:73:0b:dd:4b:10:f8:d7:b7:c6:ec: d4:9a:74:28:45:84:25:9a:90:05:53:76:c4:33:ae: 3b:d7:3c:c8:f1:a8:f4:b5:33:67:44:e2:e1:30:fa: 81:e4:f0:e8:42:a9:d1:39:05:b5:35:dd:34:84:cb: 94:92:47:d5:e8:ef:86:23:ba:28:0a:8b:2f:7b:9f: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D8:A7:DC:FF:38:D7:36:22:76:57:86:DA:D3:95:3F:60:45:8D:EA X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/47700FAC998F11EEBD7D785DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.40.0/22 163.47.104.0/22 IPv6: 2403:c900::/32 Signature Algorithm: sha256WithRSAEncryption ce:12:50:2d:24:8b:6a:d8:4d:9e:09:e6:1a:68:af:7c:49:1b: 22:5c:6a:8e:98:ce:06:e0:be:fb:80:0b:e6:3d:43:a1:28:57: d5:ba:b0:9b:a0:84:ed:8a:0d:de:f7:56:70:ce:85:85:ee:2b: b1:11:5e:47:66:1a:43:0d:eb:72:5f:f1:a0:0a:f2:b8:fa:9a: 8f:7a:24:8e:36:4c:3c:f5:4d:44:ab:34:da:c5:6c:e8:f7:a8: a9:69:5d:8a:77:e6:f1:76:29:6d:d4:1e:cd:fb:f2:e2:47:c9: 84:f3:e9:5e:4e:77:6c:01:26:40:f7:47:44:f4:37:31:aa:69: ce:ac:c7:61:ea:01:bf:26:c8:3e:99:0e:61:f2:6d:92:41:6a: 77:40:13:8a:9d:f3:35:ba:7c:3a:d6:00:d6:e4:d1:4a:4e:53: 84:cc:2a:28:43:ee:40:bb:2d:a4:5e:a9:89:44:1f:3b:6a:46: 9e:de:fb:43:4c:b1:9f:ec:a5:ad:8d:cc:96:d6:c1:2b:1a:28: cf:75:f1:68:2c:21:80:e9:90:4f:fc:43:84:6d:f8:99:cb:28: 6a:fb:ee:c3:bd:a2:54:03:18:4c:69:f2:57:ac:da:77:23:14: c9:47:ed:ac:01:61:0b:a2:6b:88:1d:42:ea:bb:bc:c4:1e:b0: a2:a9:a1:b7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjQxMDE0MjI1MjQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBjMC0yZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYdUlqRDq6OpCRVmNI+YIxoRA1xO3i//zGIK6914jLxbD3Ke17KJpmTe0NKD kCDUPrdr0G2kdL/U60WH/4SnTBgkS9bQCZOIWiAU7R0Lll+77bQutHtsbqkW6ZHI eFuSNKgpliEi24bBdSitnRJI4ap9sLmqgXSj5oxCJbdQIzZeUzi38LIbZARf3C6Q BU/M2vlFumv8y6SJgpLc+0Q+P3QuDAbOObnPfkB82VbZU99oay7RM/2vlHML3UsQ +Ne3xuzUmnQoRYQlmpAFU3bEM6471zzI8aj0tTNnROLhMPqB5PDoQqnROQW1Nd00 hMuUkkfV6O+GI7ooCosve599WwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFL3Yp9z/ ONc2InZXhtrTlT9gRY3qMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvNDc3MDBGQUM5 OThGMTFFRUJEN0Q3ODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnCSgDBAKjL2gwDQQCAAIwBwMFACQDyQAwDQYJKoZIhvcN AQELBQADggEBAM4SUC0ki2rYTZ4J5hpor3xJGyJcao6YzgbgvvuAC+Y9Q6EoV9W6 sJughO2KDd73VnDOhYXuK7ERXkdmGkMN63Jf8aAK8rj6mo96JI42TDz1TUSrNNrF bOj3qKlpXYp35vF2KW3UHs378uJHyYTz6V5Od2wBJkD3R0T0NzGqac6sx2HqAb8m yD6ZDmHybZJBandAE4qd8zW6fDrWANbk0UpOU4TMKihD7kC7LaReqYlEHztqRp7e +0NMsZ/spa2NzJbWwSsaKM918WgsIYDpkE/8Q4Rt+JnLKGr77sO9olQDGExp8les 2ncjFMlH7awBYQuia4gdQuq7vMQesKKpobc= -----END CERTIFICATE-----Generated at Sun Feb 16 20:16:51 2025 by rpki-client